# airdropsgtiapro.xyz — SUSPICIOUS

> Stay safe from crypto theft by avoiding airdropsgtiapro.xyz, a low-risk but active crypto drainer domain flagged by security tools.

## Summary
PhishDestroy identifies airdropsgtiapro.xyz as a crypto drainer threat. This domain is designed to steal cryptocurrency assets by tricking users into revealing private keys or wallet credentials.

The domain was created recently on 2025-04-13 and is currently active. It resolves to IP 198.18.0.74 and is registered through GMO Internet, Inc. It appears on three security blocklists, with two security vendors marking it as malicious on VirusTotal.

Users should avoid interacting with airdropsgtiapro.xyz and not enter any sensitive information on this site. Always verify URLs carefully and use trusted wallets and security tools to protect crypto assets.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 405)
- Target brand: godaddy
- Page title: airdropsgtiapro.xyz

## Domain Intelligence
- Registered: 2025-04-13 06:24:24
- Expires: 2026-04-13 23:59:59
- Registrar: GMO Internet, Inc.
- Country: Japan
- IP: 104.76.200.64
- Nameservers: ns5.afternic.com ns6.afternic.com verification-gakbzzzqmt6gkcplw4efpp.ns101.verify.hn

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["alphaMountain.ai", "Forcepoint ThreatSeeker"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "ScamSniffer", "Enkrypt"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019929a5-b0e9-728a-95b0-f0bf72f6ceb8.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/cdc9cb34-c7ab-426a-bd62-56e7cc1f020c
- PhishDestroy: https://phishdestroy.io/domain/airdropsgtiapro.xyz/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/airdropsgtiapro.xyz/
Last updated: 2026-03-13